5.5

CVE-2024-41060

drm/radeon: check bo_va->bo is non-NULL before using it

In the Linux kernel, the following vulnerability has been resolved:

drm/radeon: check bo_va->bo is non-NULL before using it

The call to radeon_vm_clear_freed might clear bo_va->bo, so
we have to check it before dereferencing it.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 5.15.164
LinuxLinux Kernel Version >= 5.16 < 6.1.101
LinuxLinux Kernel Version >= 6.2 < 6.6.42
LinuxLinux Kernel Version >= 6.7 < 6.9.11
LinuxLinux Kernel Version6.10 Updaterc1
LinuxLinux Kernel Version6.10 Updaterc2
LinuxLinux Kernel Version6.10 Updaterc3
LinuxLinux Kernel Version6.10 Updaterc4
LinuxLinux Kernel Version6.10 Updaterc5
LinuxLinux Kernel Version6.10 Updaterc6
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.24% 0.147
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://git.kernel.org/stable/c/6fb15dcbcf4f212930350eaee174bb60ed40a536
Patch
https://git.kernel.org/stable/c/8a500b3a5f0a58c6f99039091fbd715f64f2f8af
Patch
https://git.kernel.org/stable/c/a2b201f83971df03c8e81a480b2f2846ae8ce1a3
Patch
https://git.kernel.org/stable/c/a9100f17428cb733c4f6fbb132d98bed76318342
Patch
https://git.kernel.org/stable/c/e8d3c53c6f1cccea9c03113f06dd39521c228831
https://git.kernel.org/stable/c/f13c96e0e325a057c03f8a47734adb360e112efe
Patch
https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html